Network intrusion detection and prevention

Keyboard Shortcuts

Intrusion detection and prevention systems play an extremely important role in the defense of networks against hackers and other security threats. They sit on the network and monitor traffic, searching for signs of potentially malicious traffic. In this video, learn the use of network intrusion detection and prevention systems as well as the modeling techniques used by IDS/IPS: behavior, signature, anomaly, and heuristic.

- [Instructor] Intrusion detection and prevention systems…play an extremely important role in the defense…of networks against hackers and other security threats.…Intrusion detection systems sit on the network…and monitor traffic, searching for signs…of potential malicious activity.…For example, an intrusion detection system might notice…that a request bound for a web server,…contains a SQL injection attack,…that a malformed packet…is attempting to create a denial of service,…that a user's login attempt seems unusual…based upon the time of day and prior patterns of activity…or that a system on the internal network is attempting…to contact a botnet command and control server.…

All of these situations are examples of security issues…that administrators would obviously want to know about.…Intrusion detection systems identify the situation…and then alert administrators…to any issues for further investigation.…In many cases, administrators are not available…to immediately review alerts and take action…or are simply overwhelmed by the sheer volume…

Resume Transcript Auto-Scroll

Author

Released

4/4/2018

The Certified Information System Security Professional (CISSP) certification is an important component of any security professional's resume, and is a requirement for many top jobs. In this course, prepare for the fourth domain of the exam: Communications and Network Security. Instructor and cybersecurity expert Mike Chapple goes over TCP/IP networking, network security devices, and secure network design. Mike also includes coverage of specialized networking, network attacks, wireless networking, and more. The CISSP exam domains can be found here.

Note: This course is part of a series releasing throughout 2018. A completed learning path of the series will be available once all the courses are released.